[puppet] Might be good to add the module dir to the git tree, no?! :/

Saturday, 7 September 2013

commit d28248b55862f1d709c81b9e743804d4b2bb1feb
Author: Xavier Lamien <laxathom(a)lxtnow.net&gt;
Date:   Sat Sep 7 02:40:49 2013 +0200

    Might be good to add the module dir to the git tree, no?! :/

 modules/default-setup/manifests/init.pp |   76 +++++++++++++++++++++++++++++++
 1 files changed, 76 insertions(+), 0 deletions(-)
---

diff --git a/modules/default-setup/manifests/init.pp
b/modules/default-setup/manifests/init.pp
new file mode 100644
index 0000000..5a00a7a
--- /dev/null
+++ b/modules/default-setup/manifests/init.pp
@@ -0,0 +1,76 @@
+# This is default post-setup for non-yet managed fas hosts.
+
+class default::setup {
+    # I'm not sure this need to be installed on all hosts.
+    Apache_Httpd {
+        welcome => false,
+        serversignature => 'Off',
+    }
+    
+    Iptables {
+        # matthias (ovh + office)
+        hosts_ssh => [ '94.23.230.197', '80.169.244.43' ],
+        knock     => true,
+        knockone  => '666',
+        knocktwo  => '3615',
+    }
+    Ip6tables {
+        # matthias (ovh)
+        hosts_ssh => [ '2001:41d0:2:69c5::bb1e' ],
+        knock     => true,
+        knockone  => '666',
+        knocktwo  => '3615',
+    }
+    
+    # Non privileged user we want on all nodes, for various things
+    user { 'rpmfusion':
+        comment    => 'RPM Fusion User',
+        managehome => true,
+    }
+    file { '/home/rpmfusion/.ssh':
+        require => User['rpmfusion'],
+        ensure  => directory,
+        owner   => 'rpmfusion', group => 'rpmfusion', mode =>
'0700',
+    }
+    file { '/home/rpmfusion/.ssh/authorized_keys':
+        owner   => 'rpmfusion', group => 'rpmfusion', mode =>
'0600',
+        content => '# WARNING: This file is managed by puppet (from site.pp).
+    # WARNING: Do not manually edit it here, all changes will be discarded.
+    ssh-rsa
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
matthias
+    ssh-dss
AAAAB3NzaC1kc3MAAACBAOM9F9gGUw/E9vhoW7a/yfgVdKjEnkp6M7DVjl+SDjoDZgfjTY1RV3YnBBRQ9vAk4Cc81hJpY6jVta1RQE6QMEdyu6DHC0vVkPlnWCnco2w2lNAAEnDqrfdGrgCQLUXozToY8y0tu7aRX274MMYmWS3ONkiBvHD9jxBd/ZFd16ilAAAAFQCX0Mp+oAITp2wnOz2pte2OvAF6bwAAAIBxL32Ff5RmTorA86vuUlgYSR1WQ0dUtRsnWTioH8OH4Q1r6kD6J5dAEmEYyf3fBAcRzvY9G0te4UbQ8Yqj+2YnrSsXLz4JRnIRS4BG71FX8zxxwRSM8l3wAYbpD0StnOuFu1lEAVU6gt883fPknhiU4ZcLTL4knyHEvUs2rDbtcQAAAIAZRkzzy/rKAWWEd6QSBDUk6Iaavs2B/VPk2G8rUI51ORJSsJZ+Q7yh4M4bXWXXnrNnHkMUB/2YDyLmWPITr3bGLst7tnzHrg7Qy2WBdWbdlxY2lXWRNzzo6170mBdUXqLyeo+cPg8xXnhd4GumZpdQ42fT347v1nEL+HAGYESCMg==
xavier
+    ssh-rsa
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
nchauvet
+    ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAp9/HaNnRFXbIM83lRhZjAed9TNrK9yKMc+WxeKbJygIW4k4R57VJg0E5hTDEdnNa2tIJI06dQf4LWpu5SoovMHOoLymKXoSLQmuacklEbjvG712JcqV8JVkdFqNYBBxvD5nqjE0stEHSG4YeFvKID8e66tjAb15gy0SDmq/e8/WK6BTQcR239qtHdsnkLnWvKHmPJFtitVjceMUqAWB7ZBx5Q8dn2b6b/bZHBwK4yxOSTCM15AWpv/c+PYpEakcB8GFDAkOl4IsFFngG2LAVRhM5kdFhiLztNN+T0T7Apd+DZYLgwGbJ5zEFLMwIt2xa82ZdNbaIE30ky46q3eKl4Q==
nchauvet-old
+    ',
+    }
+    
+    # Let's avoid an internal DNS server for now
+    host { 'puppet.ovh.rpmfusion.lan':
+        ip => '192.168.230.11',
+        host_aliases => 'puppet',
+    }
+    host { 'bugzilla.ovh.rpmfusion.lan':
+        ip => '192.168.230.12',
+        host_aliases => 'bugzilla',
+    }
+    host { 'builder1.ovh.rpmfusion.lan':
+        ip => '192.168.230.13',
+        host_aliases => [ 'builder1', 'builder1.rpmfusion.org' ],
+    }
+    host { 'old02.ovh.rpmfusion.lan':
+        ip => '192.168.230.14',
+        host_aliases => 'old02',
+    }
+    host { 'old03.ovh.rpmfusion.lan':
+        ip => '192.168.230.15',
+        host_aliases => [ 'old03', 'buildsys.rpmfusion.org' ],
+    }
+    
+    # Common puppet client configuration for all nodes
+    class { 'puppet::agent':
+        forcenoop     => true,
+        service       => false,
+        cron_enable   => true,
+        cron_silent   => false,
+        puppet_server => 'puppet.ovh.rpmfusion.lan',
+    }
+}

    

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

[puppet] Might be good to add the module dir to the git tree, no?! :/